CVE-2025-20284

CWE-74 CWE-3024 documents4 sources

Severity

7.2HIGH

EPSS

0.3%

top 48.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Identity Services Engine Cisco Identity Services Engine Passive Identity Connector Cisco Cisco Identity Services Engine Software

Timeline

PublishedJul 16

Description

A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system as root. This vulnerability is due to insufficient validation of user-supplied input. An attacker with valid credentials could exploit this vulnerability by submitting a crafted API request. A successful exploit could allow the attacker to execute commands as the root user. To exploit this vulnerability, the attacker must hav…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:NExploitability: 1.2 | Impact: 5.2

Affected Packages3 packages

▶NVDcisco/identity_services_engine< 3.3.0+2

▶NVDcisco/identity_services_engine_passive_identity_connector< 3.3.0+2

▶CVEListV5cisco/cisco_identity_services_engine_software9 versions+8

🔴Vulnerability Details

CVEList

Cisco Identity Services Engine Authenticated Remote Code Execution Vulnerability↗2025-07-16

▶

GHSA

GHSA-w5q9-32xf-9fxh: A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary code on the underl↗2025-07-16

▶

📋Vendor Advisories

Cisco

Cisco Identity Services Engine Authenticated Remote Code Execution and Authorization Bypass Vulnerabilities↗2025-07-16

▶